IT Security News Daily Summary 2025-03-18

210 posts were published in the last hour

22:9 : CISA Probationary Reinstatements
22:9 : Google Acquires Wiz for Record $32 Billion
22:9 : AMOS and Lumma stealers actively spread to Reddit users
22:9 : CISA fires, now rehires and immediately benches security crew on full pay
21:14 : Threat Assessment: GitHub Actions Supply Chain Attack: The Compromise of tj-actions/changed-files
21:14 : Randall Munroe’s XKCD ‘Water Balloons’
21:14 : Recon Village – Maltego Community Workshop: OSINT & Custom Transforms
20:34 : Nation-state actors and cybercrime gangs abuse malicious .lnk files for espionage and data theft
20:34 : HP Launches Printers with Quantum Resilient Cryptography
20:11 : Google Acquires Startup Wiz for $32B to Make ‘Cybersecurity More Accessible And Simpler’
20:11 : AI Is Turbocharging Organized Crime, EU Police Agency Warns
20:5 : IT Security News Hourly Summary 2025-03-18 21h : 7 posts
19:36 : How a researcher with no malware-coding skills tricked AI into creating Chrome infostealers
19:36 : Here’s why Google pitched its $32B Wiz acquisition as ‘multicloud’
19:36 : Learn Secure Java Development with OffSec’s New Course
19:10 : How AI agents help hackers steal your confidential data – and what to do about it
19:10 : Alphabet’s $32B Wiz Acquisition Boosts Cloud Security
19:10 : 8-Year Old Windows Shortcut Zero-Day Exploited by 11 State-Sponsored Groups
19:10 : New Clearfake Variant Leverages Fake reCAPTCHA To Trick Users Deliver Malicious PowerShell Code
18:33 : Ernie 4.5 und X1 ausprobiert: Warum ihr die neuen chinesischen KI-Modelle kennen – aber nicht benutzen solltet
18:33 : Seltene Updates und keine Virenscanner: So nachlässig sind die Deutschen bei privater IT-Sicherheit
18:32 : Scammers Sneak 300+ Ad Fraud Apps onto Google Play with 60M Downloads
18:32 : US tech jobs outlook clouded by DOGE cuts, Trump tariffs
18:4 : I always turn off this default TV setting when watching movies – here’s why you should, too
18:4 : 2024 H2 IRAP report is now available on AWS Artifact for Australian customers
17:36 : Chaos bei der CISA: US-Cybersicherheitsbehörde holt Gefeuerte per Website zurück
17:36 : Anzeige: IT-Sicherheit mit Microsoft Defender gezielt stärken
17:35 : New ClearFake Variant Uses Fake reCAPTCHA to Deploy Malicious PowerShell Code
17:35 : MirrorGuard: Adaptive Defense Mechanism Against Jailbreak Attacks for Secure Deployments
17:35 : Electromagnetic Side-Channel Analysis of Cryptographically Secured Devices
17:35 : Fake Coinbase Migration Messages Target Users to Steal Wallet Credentials
17:35 : Hackers Employ DLL Side-Loading To Deliver Malicious Python Code
17:35 : Bybit Hack – Sophisticated Multi-Stage Attack Details Revealed
17:35 : How to Stop Expired Secrets from Disrupting Your Operations
17:5 : IT Security News Hourly Summary 2025-03-18 18h : 17 posts
17:2 : AI innovation requires AI security: Hear what’s new at Microsoft Secure
16:35 : You have 4 days to update Firefox before everything breaks
16:35 : ChatGPT SSRF bug quickly becomes a favorite attack vector
16:34 : Critical AMI BMC Vulnerability Exposes Servers to Disruption, Takeover
16:34 : The rise of DAST 2.0 in 2025
16:34 : New ‘Rules File Backdoor’ Attack Lets Hackers Inject Malicious Code via AI Code Editors
16:34 : AWS completes the annual UAE Information Assurance Regulation compliance assessment
16:14 : Grundgesetzänderung: So könnte die IT-Sicherheit von höheren Schulden profitieren
16:13 : Google buys Wiz for $32 billion
16:13 : What is security automation?
16:13 : Schneider Electric EcoStruxure Panel Server
16:13 : Schneider Electric EcoStruxure Power Automation System
16:13 : Rockwell Automation Lifecycle Services with VMware
16:13 : Schneider Electric EcoStruxure Power Automation System User Interface (EPAS-UI)
16:13 : Schneider Electric ASCO 5310/5350 Remote Annunciator
16:13 : CISA scrambles to contact fired employees after court rules layoffs ‘unlawful’
16:12 : Squid Werewolf Mimic as Recruiters Attacking Job Seekers To Exfiltrate Personal Data
15:38 : Grundgesetzänderung: Bundestag lockert Schuldenbremse auch für mehr IT-Sicherheit
15:37 : AI chatbots can be hijacked to steal Chrome passwords – new research exposes flaw
15:37 : How to guard against a vicious Medusa ransomware attack – before it’s too late
15:37 : Turn off this default TV setting ASAP for better picture quality – especially when watching movies
15:37 : Microsoft isn’t fixing 8-year-old shortcut exploit abused for spying
15:37 : Major Data Breach at Jaguar Land Rover Raises Security Concerns
15:37 : New Malware Impersonates Browser Extensions to Steal Login Credentials
15:37 : Nearly Half of Companies Lack AI-driven Cyber Threat Plans, Report Finds
15:37 : Security Researcher Proves GenAI Tools Can Develop Google Chrome Infostealers
15:9 : Dogequest: Webseite verrät Namen und Adressen von Tesla-Besitzern
15:8 : Orion Security emerges from stealth using LLMs to track your enterprise’s data flow and stop it from leaking out
15:8 : Cloudflare to Implement Post-Quantum Cryptography to Defend Attacks from Quantum Computers
15:8 : New Sophisticated Phishing Attack Exploiting Microsoft 365 Infrastructure To Attack Users
15:8 : 331 Malicious Apps with 60 Million Downloads on Google Play Bypass Android 13 Security
15:8 : Microsoft Warns of New StilachiRAT Stealing Remote Desktop Protocol Sessions Data
15:8 : DocSwap Malware as Security Document Viewer Attacking Android Users Worldwide
15:8 : CyCognito improves security operations automation and risk visibility
15:8 : New Critical AMI BMC Vulnerability Enables Remote Server Takeover and Bricking
15:8 : Google Acquires Wiz for $32 Billion in Its Biggest Deal Ever to Boost Cloud Security
15:8 : Unpatched Windows Zero-Day Flaw Exploited by 11 State-Sponsored Threat Groups Since 2017
15:8 : New Report Highlights Common Passwords in RDP Attacks
14:37 : Partnerangebot: Veranstaltung – cu solutions – „Workshop: Active Directory Hardening – Best Practices“
14:37 : KI-Entwicklung in Deutschland: Chancen und Hürden
14:34 : Bringing Security to Digital Product Design
14:34 : Google Agrees to Acquire Wiz in $30B Deal
14:34 : How AI and automation are reshaping security leadership
14:34 : Whistic announces next generation of Assessment Copilot
14:11 : Wie die Terrassentür zur Eingangstür wird
14:11 : Alphabet: Google startet seine größte Übernahme
14:10 : Analyze Mobile Threats Faster: ANY.RUN Introduces Android OS to Its Interactive Sandbox
14:10 : Hackers Exploit Hard Disk Image Files to Deploy VenomRAT
14:10 : New BitM Attack Enables Hackers to Hijack User Sessions in Seconds
14:10 : Is your Chromecast still throwing errors? This fix will get you streaming again
14:10 : How to turn off motion smoothing on your TV (and why you should do it ASAP)
14:10 : How can Organizations Secure Low-Code No-Code Development
14:10 : AI’s Impact on Enterprise Security and How CISOs Should Prepare
14:10 : 11 State-Sponsored APTs Exploiting LNK Files for Espionage, Data Theft
14:10 : Stealthy StilachiRAT steals data, may enable lateral movement
14:10 : Google Buys Wiz in $32bn Cloud Security Push
14:10 : BlackBasta Ransomware Ties to Russian Authorities Uncovered
14:5 : IT Security News Hourly Summary 2025-03-18 15h : 32 posts
13:38 : Fake DeepSeek AI Installers, Websites, and Apps Spreading Malware
13:38 : Microsoft Warns of StilachiRAT Stealing Remote Desktop Protocol Session Data
13:38 : DocSwap Malware Masquerades as Security Document Viewer to Attack Android Users Worldwide
13:38 : Squid Werewolf Mimics Recruiters to Target Job Seekers and Steal Personal Data
13:38 : Hackers Use DLL Side-Loading to Deploy Malicious Python Code
13:37 : Bybit Hack: Details of Sophisticated Multi-Stage Attack Uncovered
13:37 : This new tool lets you see how much of your data is exposed online – and it’s free
13:37 : Confirmed: Google buys Wiz for $32B to beef up in cloud security
13:37 : ChatGPT Vulnerability Actively Exploited From 10,000+ IPs to Attack US Government Organizations
13:37 : Google Parent Alphabet in Talks to Acquire Cyber Security Group Wiz for $30bn
13:37 : GIMP 3.0 Image Editor Released For Linux, macOS, Unix, and Windows
13:37 : Google to Acquire Cloud Security Giant Wiz for $32 Billion in Cash
13:37 : New Ad Fraud Campaign Exploits 331 Apps with 60M+ Downloads for Phishing and Intrusive Ads
13:37 : Over 16.8 Billion Records Exposed as Data Breaches Increase 6%
13:14 : (g+) Datenanonymisierung: Wie Firmen trotz DSGVO Daten sicher nutzen können
13:14 : Vorsicht bei diesen Gratis-Tools: Kostenlose Datei-Konverter verbreiten Malware
13:13 : AI Addressing New Need to Secure Data from The Inside Out
13:13 : Google’s Parent Alphabet in Talks to Acquire Cybersecurity Firm Wiz for $30 Billion
13:13 : Amazon Ends Local Voice Processing, Transitions Fully to Cloud
13:13 : How Manufacturers Can Turn Security Into a Competitive Advantage
13:13 : Halliday raises $20 million to build AI agents that operate safely on blockchain
13:13 : What is Bundesamt für Sicherheit in der Informationstechnik (BSI)?
13:13 : The 10 Most Common Website Security Attacks (and How to Protect Yourself)
13:13 : Google acquisition target Wiz links fresh supply chain attack to 23K pwned GitHub repos
13:13 : Dashlane Review 2025: Features, Pricing, and Security
13:13 : Confirmed: Google is buying Wiz for $32B to beef up in cloud security
13:13 : SOC and Awe — How Autonomous Security Is Changing the Game
13:13 : New Cloudflare Service Provides Real-Time Threat Intelligence
13:13 : Transforming Security Operations With Generative AI
13:13 : SquareX Launches “Year of Browser Bugs” (YOBB) to Expose Critical Security Blind Spots
13:13 : Google to acquire Wiz for $32 billion
13:12 : Large-Scale Malicious App Campaign Bypassing Android Security
12:39 : Lokale KI-Alternative zu Cloud-Diensten: Mit Klee befragst du deine Dokumente – wir haben es ausprobiert
12:39 : Wer Manus als KI-Agenten bezeichnet, spielt dem Hype in die Karten
12:39 : Trump, Musk oder Weidel: Wir müssen die Beschämung wieder produktiv machen
12:39 : Nie wieder Ärger mit Spam-Anrufen: Diese Schritte führen zum Erfolg
12:39 : KI und LLM: Kritische Sicherheitslücken gefährden Low-Coding-Plattform Flowise
12:37 : Secure File Transfer as a Critical Component for AI Success
12:37 : How to calculate the cost of a data breach
12:37 : Google is buying Wiz for up to $33B to beef up in cloud security
12:37 : Wellbeing in the Cybersecurity Sector: A Call for Participation
12:37 : New BitM Attack Lets Hackers Steal User Sessions Within Seconds
12:9 : [NEU] [mittel] IBM License Metric Tool: Mehrere Schwachstellen
12:8 : Cloudflare Adopts Post-Quantum Cryptography to Combat Future Quantum Attacks
12:8 : Google is buying Wiz for $32B to beef up in cloud security, sources say
12:8 : Amazon disables option to store Echo voice recordings on your device
12:8 : Western Alliance Bank Discloses Data Breach Linked to Cleo Hack
12:8 : “My Vas Pokhoronim!”
11:34 : Cloudflare warnt: Die Hälfte aller Logins erfolgt mit geleakten Passwörtern
11:33 : Hackers Exploit SSRF Vulnerability to Attack OpenAI’s ChatGPT Infrastructure
11:33 : GitHub Action tj-actions/changed-files was compromised in supply chain attack
11:33 : Is Security Human Factors Research Skewed Towards Western Ideas and Habits?
11:33 : PoC Exploit Released for Use-after-free Linux Kernel Vulnerability
11:33 : Denmark Warns of Serious Cyber Attacks Targeting Telecommunication Sector
11:33 : Red Team Tool Cobalt Strike 4.11 Released With out-of-the-box Evasion Options
11:33 : Crypto Exchange OKX Suspends Tool Used by North Korean Hackers to Steal Funds
11:33 : “My vas pokhoronim!”
11:33 : FBI: Free file converter sites and tools deliver malware
11:33 : BADBOX 2.0 Botnet Infects 1 Million Android Devices for Ad Fraud and Proxy Abuse
11:33 : China-Linked MirrorFace Deploys ANEL and AsyncRAT in New Cyber Espionage Operation
11:32 : How to Improve Okta Security in Four Steps
11:15 : Private Apps und genKI bleiben hohes Risiko im Finanzdienstleistungssektor
11:15 : FBI-Warnung: Betrügerische Online-Dateikonverter schleusen Trojaner in Dokumente
11:15 : [NEU] [mittel] Mattermost Server: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff
11:15 : [UPDATE] [kritisch] Webkit/Apple : Schwachstelle ermöglicht Umgehung von Sicherheitsmechanismen
11:15 : [UPDATE] [hoch] Linux Kernel: Mehrere Schwachstellen
11:15 : [UPDATE] [niedrig] Linux Kernel: Mehrere Schwachstellen
11:15 : [UPDATE] [mittel] Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service
11:14 : DeepMind’s Hassabis Urges UK To Expand AI Ambitions
11:14 : TruffleHog: New Burp Suite Extension for Secret Scanning Released
11:14 : FCC Chairman Establishes New National Security Council to Tackle Tech Threats
11:14 : The API Security Illusion: IT Leaders May Be Overconfident
11:14 : Insight Into Reliaquest’s Critical Cyber Threats to Hospitality and Recreation Report
11:14 : GitHub Leak Puts Software Supply Chains at Risk: Thousands of Secrets Exposed
11:14 : Massive RSA Encryption Flaw Exposes Millions of IoT Devices to Attack
11:14 : UK wants dirt on data brokers before criminals get there first
11:5 : IT Security News Hourly Summary 2025-03-18 12h : 10 posts
10:35 : Malwareverteiler: FBI warnt vor betrügerischen Online-Dateikonvertern
10:34 : New Intel Chief Lip-Bu Tan ‘Considers’ Job Cuts, Factory Revamp
10:34 : BYD Says Latest EVs Can Charge As Fast As Pumping Petrol
10:8 : Cyberangriffe auf städtische Seniorenheime in Mönchengladbach, Aerticket & mehr
10:8 : [UPDATE] [hoch] Apple macOS: Mehrere Schwachstellen
10:7 : Top 10 Best Penetration Testing Companies in 2025
10:7 : 5 Chromecast features you’re not using enough on your TV (including a smart home buff)
10:7 : ChatGPT Vulnerability Exploited Against US Government Organizations
10:7 : The Future of Enterprise Security: AI-powered Lateral Defense in a Dynamic Threat Landscape
10:7 : Third of UK Supply Chain Relies on “Chinese Military” Companies
9:36 : Partnerangebot: Fit für die Zukunft? Quantensichere Verschlüsselung für E-Mails
9:36 : Cyberangriff auf städtische Seniorenheime in Mönchengladbach, Aerticket und mehr
9:36 : [UPDATE] [mittel] Ruby on Rails: Schwachstelle ermöglicht Offenlegung von Informationen
9:36 : [UPDATE] [niedrig] Ruby on Rails: Schwachstelle ermöglicht Cross-Site Scripting
9:36 : [UPDATE] [mittel] Grub2: Mehrere Schwachstellen
9:36 : [UPDATE] [mittel] FreeType: Mehrere Schwachstellen
9:36 : [UPDATE] [mittel] libxml2: Mehrere Schwachstellen ermöglichen Denial of Service
9:34 : New Huawei Chip Appears As Company Shifts Away From Windows, Intel
9:34 : South Korea Sees China Chip Exports Slump
9:34 : TikTok rolls out a new Security Checkup tool. Here’s how it works
9:34 : CISO Global launches AI-driven cloud security solution
9:8 : Biometrische Merkmale als Schlüssel für die sichere Authentifizierung
9:8 : Bad Update: Neuer Exploit knackt Xbox 360 per USB-Stick
9:7 : SocGholish’s Intrusion Techniques Facilitate Distribution of RansomHub Ransomware
8:35 : Marktkonsolidierung: Chancen und Risiken für KMU
8:34 : ClearFake’s New Widespread Variant: Increased Web3 Exploitation for Malware Delivery
8:34 : Telegram’s Durov Allowed To Leave France As Probe Continues
8:34 : Crypto Platform OKX Suspends Tool Abused by North Korean Hackers
8:34 : New StilachiRAT uses sophisticated techniques to avoid detection
8:7 : Python Bot Delivered Through DLL Side-Loading, (Tue, Mar 18th)
8:7 : Cobalt Strike 4.11 Released with Built-In Evasion Features for Red Teams
8:7 : Google Released Open Source Version of OSV-Scanner Tool for Vulnerability Scanning
8:7 : Microsoft Warns of StilachiRAT: A Stealthy RAT Targeting Credentials and Crypto Wallets
8:5 : IT Security News Hourly Summary 2025-03-18 09h : 4 posts
7:32 : Extortion crew threatened to inform Edward Snowden (?!) if victim didn’t pay up
7:32 : GitHub repositories targeted, Apache Tomcat RCE exploit, BEC campaigns target Microsoft 365
7:14 : Nach weltweitem Ausfall: Google verteilt Fehlerkorrektur für alle Chromecasts
7:13 : Thousands of British musicians fall silent over government AI plans
6:35 : Anzeige: Microsoft-365-Sicherheit professionell verwalten
6:34 : PoC Exploit Released for Linux Kernel Use-After-Free Vulnerability

Post navigation